Bio-metric smart card, bio-metric smart card reader and method of use
First Claim
Patent Images
1. An apparatus for preventing the unauthorized use of at least one non-varying account number, the apparatus comprising:
- a user authenticator with bio-metric authentication input providing the apparatus with a user'"'"'s bio-metric authentication data for proving the user is authorized to use the at least one on-varying account number;
a transaction counter for tracking authorized device access events with contents derived from authorized device access events;
a processor in electrical communication with the user authenticator and counter, the processor being programmed to generate a security key in response to the bio-metric authorization authentication data received via the user authenticator, the security key being derived at least in part from the contents of the counter and at least in part from the user'"'"'s bio-metric authentication data; and
a display unit to display the security key on the apparatus.
3 Assignments
0 Petitions
Accused Products
Abstract
A system for increasing transaction security across existing infrastructure is provided. A user bio-metric sensor device is integrated into a credit or debit card. A display unit provides a key, preferably encrypted, upon successful utilization of the sensor device. Included in the key generation mechanism is an indicator of the transaction number or other sequential count indicative of card use. An authorization service decrypts the key in a manner at least partially dependent upon a second sequential count maintained in sync with the first count to determine whether the use is authorized.
114 Citations
16 Claims
-
1. An apparatus for preventing the unauthorized use of at least one non-varying account number, the apparatus comprising:
-
a user authenticator with bio-metric authentication input providing the apparatus with a user'"'"'s bio-metric authentication data for proving the user is authorized to use the at least one on-varying account number;
a transaction counter for tracking authorized device access events with contents derived from authorized device access events;
a processor in electrical communication with the user authenticator and counter, the processor being programmed to generate a security key in response to the bio-metric authorization authentication data received via the user authenticator, the security key being derived at least in part from the contents of the counter and at least in part from the user'"'"'s bio-metric authentication data; and
a display unit to display the security key on the apparatus. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A system or securely processing transactions with an account, the system comprising:
-
a) a security key device, the device including;
i) a user authenticator with a bio-metric authentication input providing the device with the user'"'"'s bio-metric authentication data for proving the user is authorized to use the account;
ii) a first counter in electrical communication with the user authenticator, the first counter having representative of authorized device access events;
iii) a key generation processor in electrical communication with the user authenticator and counter, the processor being programmed to generate a security key in response to authentication data received via the user authenticator, the security key being derived at least in part from the contents of the first counter and at least in part from the user'"'"'s bio-metric authentication data;
iv) an electronic display in electrical communication with the processor, for displaying the security key on the security key device;
b) a second counter being connected to receive a remote indicator of a successful device access event, the second counter having contents representative of successful device access events; and
c) a key confirmation processor programmed to confirm an authenticity of the security key in a manner at least partially dependent upon the contents of the second counter. - View Dependent Claims (8, 9, 10, 11)
-
-
12. A method of securely authorizing a transaction utilizing an account, the method comprising:
-
confirming an authorized use of a account card via a bio-metric sensor;
generating user'"'"'s bio-metric authentication data from a user'"'"'s input via the bio-metric sensor;
maintaining a first count indicative of a number of instances of such authorized uses;
generating a security key in a manner at least partially dependent upon the count, and at least partially dependent upon the user'"'"'s bio-metric authentication data;
transmitting the security key to an authorizing authority;
processing the security key at the authorizing authority;
maintaining a second count indicative of a number of transmissions received by the authorizing authority for the account;
confirming that the security key was generated by an authorized user at least in part through use of the user'"'"'s bio-metric authentication data and in part through the use of the first count and the second count; and
authorizing the transaction if the security key was generated by an authorized user. - View Dependent Claims (13, 14, 15, 16)
-
Specification